× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: b1b7e577b41c44f3cb17a8c14006658cc7f42f7e7d7511da1a76239a59351461
File name: DEC.bpl
Detection ratio: 0 / 46
Analysis date: 2013-02-01 12:32:38 UTC ( 6 years, 2 months ago )
Antivirus Result Update
Yandex 20130201
AhnLab-V3 20130201
AntiVir 20130201
Antiy-AVL 20130201
Avast 20130201
AVG 20130201
BitDefender 20130201
ByteHero 20130201
CAT-QuickHeal 20130201
ClamAV 20130201
Commtouch 20130201
Comodo 20130201
DrWeb 20130201
Emsisoft 20130201
eSafe 20130131
ESET-NOD32 20130201
F-Prot 20130201
F-Secure 20130201
Fortinet 20130201
GData 20130201
Ikarus 20130201
Jiangmin 20121221
K7AntiVirus 20130201
Kaspersky 20130201
Kingsoft 20130131
Malwarebytes 20130201
McAfee 20130201
McAfee-GW-Edition 20130201
Microsoft 20130201
eScan 20130201
NANO-Antivirus 20130201
Norman 20130201
nProtect 20130201
Panda 20130201
PCTools 20130201
Rising 20130201
Sophos AV 20130131
SUPERAntiSpyware 20130201
Symantec 20130201
TheHacker 20130131
TotalDefense 20130131
TrendMicro 20130201
TrendMicro-HouseCall 20130201
VBA32 20130201
VIPRE 20130201
ViRobot 20130201
The file being studied is a Portable Executable file! More specifically, it is a Win32 DLL file for the Windows GUI subsystem.
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2013-01-22 14:45:08
Entry Point 0x0001F094
Number of sections 9
PE sections
PE imports
GetSystemTime
LocalFree
LocalAlloc
FreeLibrary
QueryPerformanceCounter
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
@System@FindClassHInstance$qqrp17System@TMetaClass
@System@@LStrArrayClr$qqrpvi
@System@AddModuleUnloadProc$qqrpqqri$v
@System@@UStrCat3$qqrr20System@UnicodeStringx20System@UnicodeStringt2
@Classes@TFileStream@$bctr$qqrx20System@UnicodeStringus
@System@@UStrAsg$qqrr20System@UnicodeStringx20System@UnicodeString
@System@TObject@Equals$qqrp14System@TObject
@System@TObject@InheritsFrom$qqrp17System@TMetaClass
@Classes@TStream@SetPosition$qqrxj
@Typinfo@Finalization$qqrv
@System@TObject@ClassName$qqrv
@System@@AfterConstruction$qqrp14System@TObject
@Classes@TList@
@Sysutils@StrLen$qqrpxc
@Sysutils@Exception@$bctr$qqrx20System@UnicodeStringpx14System@TVarRecxi
@System@@UStrEqual$qqrv
@System@@LStrCatN$qqrv
@Sysutils@Finalization$qqrv
@Varutils@Finalization$qqrv
@Classes@TList@Add$qqrpv
@System@Pos$qqrx20System@UnicodeStringt1
*invalid*
@System@TObject@Dispatch$qqrpv
@Classes@TPersistent@DefineProperties$qqrp14Classes@TFiler
@Typinfo@initialization$qqrv
@System@@LStrAddRef$qqrpv
@System@@HandleAnyException$qqrv
@Variants@Finalization$qqrv
@System@TObject@FreeInstance$qqrv
@Classes@TStrings@EndUpdate$qqrv
@Variants@initialization$qqrv
@System@UpCase$qqrc
@System@@ClassCreate$qqrp17System@TMetaClasso
@System@TObject@ClassType$qqrv
@System@@PackageUnload$qqrpx23System@PackageInfoTablep17System@TLibModule
@Classes@TStream@ReadBuffer$qqrpvi
@Classes@TList@IndexOf$qqrpv
@System@@UStrSetLength$qqrr20System@UnicodeStringi
@Sysutils@FreeAndNil$qqrpv
@System@StringOfChar$qqrbi
@System@@RunError$qqruc
@Varutils@initialization$qqrv
@Sysutils@Exception@
@System@@DoneExcept$qqrv
@System@TObject@InstanceSize$qqrv
@Classes@TPersistent@
@Sysutils@EmptyStr
@System@@UStrArrayClr$qqrpvi
@Classes@TStrings@
@System@@UStrClr$qqrpv
@System@@EnsureUnicodeString$qqrr20System@UnicodeString
@System@@UStrAddRef$qqrpv
@System@@AbstractError$qqrv
@System@@LStrClr$qqrpv
@Sysutils@Exception@RaisingException$qqrp25Sysutils@TExceptionRecord
@System@TObject@SafeCallException$qqrp14System@TObjectpv
@Classes@TPersistent@AssignTo$qqrp19Classes@TPersistent
@Classes@TPersistent@Assign$qqrp19Classes@TPersistent
@Sysutils@Exception@ToString$qqrv
@Classes@TStream@
@System@@FillChar$qqrpvib
@Classes@TList@Delete$qqri
@System@TObject@ToString$qqrv
@System@@UniqueStringU$qqrr20System@UnicodeString
@Classes@TFileStream@
@System@RegisterModule$qqrp17System@TLibModule
@Classes@initialization$qqrv
@System@@ClassDestroy$qqrp14System@TObject
@System@@RaiseExcept$qqrv
@System@@UStrToPWChar$qqrx20System@UnicodeString
@System@@GetMem$qqri
@System@@PackageLoad$qqrpx23System@PackageInfoTablep17System@TLibModule
@Sysutils@initialization$qqrv
@System@@HandleFinally$qqrv
@System@TObject@AfterConstruction$qqrv
@Sysutils@StrPos$qqrpxct1
@System@TObject@$bctr$qqrv
@System@@BeforeDestruction$qqrp14System@TObjectzc
@System@LoadResString$qqrp20System@TResStringRec
@System@@UStrLen$qqrx20System@UnicodeString
@Sysutils@Exception@GetBaseException$qqrv
@System@@LStrAsg$qqrpvpxv
@System@Move$qqrpxvpvi
@Sysutils@CompareText$qqrx20System@UnicodeStringt1
@$xp$19Classes@TPersistent
@Sysutils@Exception@$bdtr$qqrv
@System@@LStrSetLength$qqrv
@System@TObject@BeforeDestruction$qqrv
@System@TObject@DefaultHandler$qqrpv
@System@@FreeMem$qqrpv
@Sysutils@IntToHex$qqrji
@Classes@Finalization$qqrv
@System@UnregisterModule$qqrp17System@TLibModule
@System@initialization$qqrv
@Sysutils@Exception@$bctr$qqrx20System@UnicodeString
@System@TObject@Free$qqrv
@Sysutils@UpperCase$qqrx20System@UnicodeString
@Classes@TStream@GetPosition$qqrv
@System@@LStrCat$qqrv
@$xp$18Sysutils@Exception
@Classes@TList@Get$qqri
@System@TObject@NewInstance$qqrv
@$xp$7Integer
@System@@UStrDelete$qqrr20System@UnicodeStringii
@System@TObject@CleanupInstance$qqrv
@System@TObject@GetHashCode$qqrv
@System@Finalization$qqrv
@Classes@TPersistent@$bdtr$qqrv
@System@RemoveModuleUnloadProc$qqrpqqri$v
@$xp$17System@IInterface
@System@@ReallocMem$qqrrpvi
@$xp$11System@Byte
@Classes@TStrings@BeginUpdate$qqrv
PE exports
Number of PE resources by type
RT_RCDATA 3
RT_STRING 1
RT_VERSION 1
Number of PE resources by language
NEUTRAL 4
GERMAN 1
ExifTool file metadata
CodeSize
119808

InitializedDataSize
180736

ImageVersion
0.0

ProductName
TuneUp Utilities 2013

FileVersionNumber
13.0.3000.190

UninitializedDataSize
0

LanguageCode
German

FileFlagsMask
0x0017

CharacterSet
Unicode

LinkerVersion
2.25

MIMEType
application/octet-stream

Subsystem
Windows GUI

FileVersion
13.0.3000.190

TimeStamp
2013:01:22 15:45:08+01:00

FileType
Win32 DLL

PEType
PE32

ProductVersion
13.0.3000.190

SubsystemVersion
5.0

OSVersion
5.0

FileOS
Windows NT 32-bit

MachineType
Intel 386 or later, and compatibles

CompanyName
TuneUp Software

LegalTrademarks
TuneUp Utilities

FileSubtype
0

ProductVersionNumber
13.0.3000.190

EntryPoint
0x1f094

ObjectFileType
Unknown

Compressed bundles
File identification
MD5 736c45ff0d11a589b783c3a9034373f3
SHA1 9057849afecd4e15f2dd4c0ab2c53d6c1fd515dd
SHA256 b1b7e577b41c44f3cb17a8c14006658cc7f42f7e7d7511da1a76239a59351461
ssdeep
6144:Z5RUXqf5A/4yA7jrPTRos9bqTqqDLv940EDfXFwsh06M/fbuBZR:Z5RUXqf5A/4yerP1oO2Oqn1vEDfXKsK+

File size 300.3 KB ( 307488 bytes )
File type Win32 DLL
Magic literal
MS-DOS executable PE for MS Windows (DLL) (GUI) Intel 80386 32-bit

TrID Win32 Executable Generic (58.3%)
Win16/32 Executable Delphi generic (14.1%)
Generic Win/DOS Executable (13.7%)
DOS Executable Generic (13.6%)
Autodesk FLIC Image File (extensions: flc, fli, cel) (0.0%)
Tags
pedll

VirusTotal metadata
First submission 2013-02-01 12:32:38 UTC ( 6 years, 2 months ago )
Last submission 2013-02-01 12:32:38 UTC ( 6 years, 2 months ago )
File names DEC.bpl
DEC.bpl
DEC.bpl
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!